Package Management

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6266-1 Related CVEs: CVE-2023-38633 Upstream summary: Zac Sims discovered that librsvg incorrectly handled decoding URLs. A remote attacker could possibly use this issue to read arbitrary files by using an […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7837-1 Related CVEs: CVE-2025-47219 CVE-2022-1920 CVE-2022-1921 CVE-2022-1922 CVE-2022-1923 CVE-2022-1924 CVE-2022-1925 CVE-2022-2122  +2 more Upstream summary: Shaun Mirani discovered that GStreamer Good Plugins incorrectly handled certain malformed media files. An attacker […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6226-1 Related CVEs: CVE-2023-25399 CVE-2023-29824 Upstream summary: It was discovered that SciPy did not properly manage memory operations during reference counting. An attacker could possibly use this issue to cause […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7858-1 Related CVEs: CVE-2025-52885 CVE-2025-43718 CVE-2025-50420 CVE-2025-52886 CVE-2025-43903 CVE-2025-32364 CVE-2025-32365 CVE-2024-56378  +9 more Upstream summary: It was discovered that poppler incorrectly handled certain PDF files. An attacker could possibly use […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 24.04 (noble) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7472-1 Related CVEs: CVE-2021-42553 CVE-2024-8946 CVE-2024-8947 Upstream summary: Junwha Hong and Wonil Jang discovered that Micropython incorrectly handled the length of a buffer in mp_vfs_umount, leading to a heap-based buffer […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 20.04 (focal) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-6204-1 Related CVEs: CVE-2023-34095 Upstream summary: Seth Arnold discovered that CPDB incorrectly handled certain characters. An attacker could possibly use this issue to cause a crash or execute arbitrary code. […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 18.04 (bionic) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-5232-1 Related CVEs: CVE-2021-32749 Upstream summary: Jakub Żoczek discovered that certain Fail2ban actions handled whois responses in an insecure way. If Fail2ban was configured to use certain mail actions like […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 24.04 (noble) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7375-1 Related CVEs: CVE-2023-28617 CVE-2024-30202 CVE-2024-30205 CVE-2024-39331 Upstream summary: It was discovered that Org Mode did not correctly handle filenames containing shell metacharacters. An attacker could possibly use this issue […]

🟡 Medium   ⏱ 10–30 min  Last verified: 25 May 2026 Affected versions: Ubuntu 22.04 (jammy) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-5847-1 Related CVEs: CVE-2020-7729 CVE-2022-0436 CVE-2022-1537 Upstream summary: It was discovered that Grunt was not properly loading YAML files before parsing them. An attacker could possibly use this issue to […]

🟢 Low   ⏱ 5–15 min  Last verified: 25 May 2026 Affected versions: Ubuntu 14.04 (trusty) 📖 ~4 min read  •  Source: Ubuntu Security Notice USN-7040-2 Related CVEs: CVE-2023-26112 Upstream summary: USN-7040-1 fixed a vulnerability in ConfigObj. This update provides the corresponding update for Ubuntu 14.04 LTS. Original advisory details: It was discovered that ConfigObj […]